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(54) Data security device for protection stored data 



(57) The security device, for protecting sensitive data stored in a resettable memory, includes a housing formed of six 
ceramic plates (P1-P6) each having provided thereon a pair of thin film conductive path segments arranged in a 
meandering configuration. The thin film conductive path segments are joined together by interconnection devices 
each including a pair of ceramic studs (e.g. K9, K1 0) having conductive areas thereon connected by an interconnect 
block (e.g. N5), thereby forming two complete thin film conductive paths which meander in a closely spaced, parallel 
manner over the entire inner surface of the housing. Interrupting or short circuiting the thin film conductive paths 
causes reset means to reset the resettable memory thereby erasing the data stored therein. 

The plates together define a ceramic housing which is resistantto chemical attack, physical attack and tempering at 
extremely lowtemperatures. Cutting or drilling the housing causes it to break or crack with consequential damage 
interrupting one or more conductive paths. 
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SPECIFICATION 

Data security device for protecting stored data 

5 This invention relates to a security device for protect- 70 
ing stored sensitive data. 

International Patent Application No. WO 84/0461 4 
discloses a data security device which includes a 
container formed of a brittle material such as pres- 

10 tressed glass and which includes a data processor, a 75 
volatile CMOS RAM memory device for storing en- 
cryption key data, and a battery forming the power 
supply forthe memory device. The container con- 
sists of a housing and a lid. The battery is connected 

15 to the memory device by a power supply conductor 80 
formed in a winding path configuration on the in- 
terior surfaces of the housing and the lid, the partsof 
the power supply conductor on the housing and lid 
being connected by pairs of contacts at the jointfaces 

20' between the housing and the lid. The conductor is 85 

formed by an evaporated metal thin film material. 

The power supply conductor pattern is bifiliarand 
the parts of the conductor are interleaved with additi- 
onal conductors on the interior surfaces of the hous- 

25 ing and lid which are earthed or connected to a vol- 90 
tage source. Thus, if the power supply conductor is 
interrupted or connected to either of the additional 
conductors the power supply to the volatile RAM 
would be so much altered that the data in the RAM 

30 would be destroyed. The known device has the dis- 95 
advantage of a relatively low level of security since 
the width of the power supply conductor provided on 
the housing must be maintained sufficiently great to 
enable the provision of an adequate power supply to 

35 the memory device. Such relatively wide conductors 100 
are subjectto the possibility of penetration. Forex- 
ample, it could be possible to produce a hole of suf- 
ficientlysmall diameterto maintain a conductive 
path in a relatively wide power supply conductor, yet 

40 enable unauthorized access to the memory device 105 
viathehoie. 

German Offen leg ungssch rift No. 3 023 427 dis- 
closes a mobile data storage unit which includes a 
plurality of memory devices within a closed con- 

45 tainerformed by a housing and a lid. Located within 110 
the material forming the walls of the container area 
plurality of differential pressure sensing devices con- 
r nected to closed channels also located inthewallsof 

the container, such that any attempt to break into the 

50 container which disrupts the pressure in the closed 115 
channels is detected by the pressure sensing devices 
and causes the operation of a relay to provide an 
erase signal to erase the contents of the memory dev- 
ices. Also located within the material forming the 

55 wal Is of the container are a pair of thin conductors, 120 
which run in an arbitrary configuration through the 
housing and the lid, and are connected to a power 
source and the relay. Any external influence which 
breaks either of these thin conductors also causes 

60 the relay to provide an erase signal to erase the con- 125 
tents of the memory devices. However, this known 
device is of complex and expensive construction re- 
sulting from the provision of the closed channels and 
pressure sensing devices. Furthermore, the pos- 

65 sibility exists of forming a small diameter hole into 130 



the interior of the unit without interrupting either of 
the pair of thin conductors. Thus, the degree of sec- 
urity achievable with this known unit is also limited. 

It is an object of the present invention to provide a 
data security device wherein the aforementioned dis- 
advantage is alleviated. 

Therefore, according to the present invention, 
there is provided a security device for protecting sto- 
red sensitive data, including a closed housing con- 
taining memory means adapted to store sensitive 
data, and conductive path means provided in a wind- 
ing configuration on the entire innersurface of said 
housing, wherein said housing contains tamper det- 
ection circuitry which is coupled to said conductive 
path means and to said memory means, and which 
includes reset signal generating means adapted to 
generate a reset signal to erase the contents of said 
memory means in the event of an interruption of said 
conductive path means brought about by an attempt 
to penetrate said housing. 

Preferably, the conductive path means includes 
first and second substantially parallel conductive 
paths provided on the innersurface of the housing. It 
will be appreciated that this feature provides an 
additional advantage overthe data security device 
disclosed in the aforementioned International Patent 
Application No. WO 84/0461 4, wherein the formation 
of a small diameter hole through one of the earthed 
or powered additional conductors interleaved with 
the powersupply conductor would, of course, not 
affect the power sup ply to the volatile RAM, even if 
the hole completely interruptsthe electrical con- 
tinuity of the additional conductor. With the arrange- 
ment of the preferred feature, the interruption of 
either of the first and second conductive paths prod- 
uces a reset signal to erase the contents of the 
memory means. 

It will be appreciated that the present specification 
referstothetechniques of thinfilm technology and 
thickfilm technology. As is well known to those 
skilled in the electronics art, the former is a techno- 
logy wherein a thin film, up to a few micrometres in 
thickness, is deposited by thinfilm deposition tech- 
niques. One such technique is to drop molten con- 
ductive metal on to a rapidly spinning substrate. 
Other techniques forforming thin films are vacuum 
evaporation and cathode sputtering. Such a deposi- 
ted thin film is then etched to a desired configuration 
or pattern. Thin film technology is to be contrasted 
with thickfilm technology wherein a paste is deposi- 
ted by thickfilm deposition techniques, such as 
screen pri nting, and then fired, that is, heated to a 
sufficiently high temperature to harden the deposi- 
ted paste, therebyforming a relatively thickfilm hav- 
ing a thickness of the order often micrometres to a 
few tens of micrometres. Both thin film technology 
and thickfilm technology are well known to those 
skilled in the electronics art, and detailed description 
thereof is not considered necessary. 

One embodiment of the present invention will now 
be described by way of example with reference to the 
accompanying drawings, in which :- 

Figure 7 is a view of a security device according to 
the invention; 

Figure 2 is an exploded perspective view of the sec- 
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urity device shown in Figure 1; 

Figure 3 is a schematic viewshowing on an enlar- 
ged scale two conductive path segments formed on 
the interior su rface of the base plate of the secu rity 
5 device shown in Figure 1; 

F/gure4isaschematicviewshowing on an enlar- 
ged scale two conductive path segments formed on 
the interior surface of the top plate of the security de- 
vice shown in Figure 1 ; 
10 Figure 5\s a schematic view showing on an enlar- 
ged scale two conductive path segments formed on 
the interior surface of one of the side plates of the 
security device shown in Figure 1 ; 

Figure 6\s a schematic viewshowing the manner 
15 in which the interconnections between the conduct- 
ive path segments on the respective interior surfaces 
of the six plates forming the housing of the security 
device shown in Figure 1 areformed; 

Figure 7is an end view on an enlarged scale of the 
20 interior of the security device shown in Figure 1 look- 
ing along the direction of the arrows 7-7 in Figure 1, 
with the front side plate removed; 

Figure Sis an exploded perspective view showing 
the construction of one of the interconnection dev- 
25 ices; 

Figure 9 shows the manner in which the conduct- 
ive path segments on the interior surfaces of the six 
plates are interconnected to form two complete con- 
ductive paths; 

30 Figure 10\s a block diagram of the electroniccircu- 
itry within the security device shown in Figure 1 ; and 

Figure 7 7 is a circuit block diagram of the tamper 
detection circuitry of Figure 9. 
Referring first to Figures 1 and 2 of the drawings, a 

35 security device 1 0 according to the invention inclu- 
des a housing 1 1 which is formed by a top plate P1 , 
side plates P2-P5 and a base plate P6. The six plates 
P1-P6are preferably formed of a cermic material 
since ceramic material is highly resistantto chemical 

40 attack. Included within the security device 1 0 is elec- 
tronic circuitry (not shown in Figures 1 and 2), con- 
nected via conductive paths 12 to terminal areas 14 
provided on end portions 1 6 of the base plate P6. The 
terminal areas 14 are in contact with respective con- 

45 ductive input-output pins (not shown) in a con- 
ventional mannerto enable connectionsto external 
circuitry to be made by mounting the secu rity device 
1 0 on a printed circuit board. 
Referring to Figures 3-7, the construction of the de- 

50 vice 10 will now be described. Each of top plate P1, 
the side plates P2-P5and the bottom plate P6 forming 
the housing 1 1 , is provided on its interior surface 
with a pair of conductive path segments formed in a 
winding configuration with the paths on the various 

55 plates P1-P6 being connected together in a mannerto 
be described hereinafter to form two complete con- 
ductive paths referred to herein as wire mesh A 
(WMA) and wire mesh B (WMB).Thus, referring to 
Figure 3, the bottom plate P6 is provided with con- 

60 ductive path segments P6A and P6B; referring to 
Figure 4, the top plate P1 is provided with conductive 
path segments P1 A and P1B; and referring to Figure 
5, the side plate P3 is provided with conductive path 
segments P3Aand P3B. The conductive path seg- 

65 ments P6A, PIAand P3Aform part of WMA, and the 



conductive path segments P6B, P1 B and P3Bforrn 
part of WMB. The conductive path segments on the 
side plates P2, P4 and P5 have an identical configura- 
tion to that shown for side plate P3 in Figure 5, the 
70 side plates P2, P4 and P5 bei ng provided with con- 
ductive path segments P2A, P2B; P4A, P4B; and P5A, 
P5B. The conductive path segments on all the side 
plates have identical configurations. It should be 
noted, however, that the side plates P2and P4have a 
75 si ig htly shorter length than the side plates P3 and P5, 
the end portions 20, 22 being absent Thus, when the 
housing 1 1 of the device 10 is assembled the side 
plates P2 and P4 are attached to the end portions 20 
and 22 of the side plates P3 and P5. 
80 It will be appreciated that the precise configuration 
of the conductive path segments such as P1 A, P1 B, 
. . .,P6A,P6Bisnotof importance, and for reasons of 
clarity, has been shown only schematically in Figures 
3, 4 and 5. Suffice it to say thatthe path segments of 
85 the wire meshes WMA and WM B are disposed in an 
adjacent, coplanar, parallel relationship and form a 
winding configuration oversubstantially theentire 
surfaces of the respective plates P1 -P6, with the ex- 
ception of the end portions 16 of the base plate P6 
90 and the end portions 20, 22 of the side plates P3 and 
P5. The winding configurations may be meandering 
paths which meander back and forth over the plate 
surfaces, as indicated in Figures 3 r 4 and 5. The con- 
ductive path segments have a width of about 25 mic- 
95 ro metres and the spacing between adj ace nt con duct- 
ive segments is also about 25 micrometres. Further- 
more, the thickness of the conductors of the conduct- 
ive path segments is preferably within the range of 
about 0.5 micrometres to about 3.0 micrometres and 

100 in the preferred embodiment is about 1.0 micro- 
metres. If desired, the conductive path segments 
P1 A, P1B, . . P6A, P6B could be coated with an in- 
sulating layer. 
The manner in which the conductive pathseg- 

1 05 ments on the respective plates are interconnected 
will now be described with reference to Figure 8, 
which shows an exploded perspective view of a typi- 
cal interconnection device 30 interconnecting the 
conductive path segments P5A and P6A on the plates 

110 P5and P6 respectively. The interconnection device 
30 includes interconnect studs K9and K10,an inter- 
connect block N5 and a support stud S5. The inter- 
connect stud K9 includes a nonconductive ceramic 
body 32 provided with a conductive a rea 34. The in- 

1 1 5 terconnect stud K1 0 is of identical construction to the 
interconnect stud K9 f and includes a nonconductive 
ceramic body 36 provided with a conductive area 38. 
The interconnect block N5 serves to provide an elec- 
trical interconnection between the conductive areas 

120 34 and 38 on the interconnect studs K9 and K10 re- 
spectively. The interconnect block N5 may be formed 
of metal, but in the preferred embodiment includes a 
six sided block of non-conductive ceramic material, 
with two adjacent sides, that is, the sides facing the 

1 25 interconnect studs K9 and K10 having conductive 
coatings provided thereon, such that a conductive 
path is established between the conductive areas 34 
and 38. This has the advantage thatthe thermal coef- 
ficient of expansion of the interconnect block N5 is 

130 compatible with the other ceramic components of 
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the security device 10. The support stud S5 is of cer- 
amic material and is located between the inter- 
connect block N5 and the top plate P1 (not shown in 
Figure 8) when the housing 1 1 of the security device 
5 10 is assembled. 

An interconnection point A1 7 is formed by bond- 
ing one end of a wire 44 to the conductive path seg- 
ment P6A on the plate P6. The other end of the wire 
44 forms an interconnection point A1 8 by bonding to 

10 the conductive area 34. An interconnection point A20 
is formed by bonding one end of a wire 46 tothe con- 
ductive path segment P5A on the plate P5. The other 
end of the wire 46 forms an interconnection point 
A1 9 by bonding to the conductive area 38. 

1 5 The interconnection device 30 is assembled by 
bonding the intercon nect studs K9, K1 0 to the re- 
spective plates P6, P5 by nonconductive epoxy, and 
bonding the interconnect block N5to the conductive 
areas 34, 38 by conductive epoxy. The interconnect 

20 block N5 is also bonded to the support stud S5 by 
nonconductive epoxy. The interconnect studs K9 and 
K1 0 are bonded by nonconductive epoxy to areas 48 
and 50 on the respective plates P6 and P5. Bonding 
materials otherthan epoxy could be used. It should 

25 be understood that the areas 48 and 50 overl ie re- 
gions of the meandering coplanar conductive path 
segments P6A, P5A, P6B, P5B, although the conduct- 
ive path segments P6B, P5B are not shown in Figure 8 
for reaons of clarity. It will be appreciated thatwith 

30 this arrangementthe interconnection device 30 prov- 
ides a very high degree of security against un- 
authorized attempts to break into the housing 1 1 of 
the security device 10 in the neighbourhood of an in- 
terconnection device such as the device 30. 

35 Referring particularlyto Figure6,the interiorsur- 
faces of the six plates P1 -P6 of the housing 1 1 are 
shown schematically. When assembled,theedges 
60, 62 of the top plate wiil overlie the inner bounda- 
ries 64, 66, respectively, of the end portions 16 of the 

40 base plate P6. For clarity, the conductive path seg- 
ments P1 A-P6A and P1 B-P6B are notshown in Figure 
6. 

The configuration of the wire meshes WMAand 
WM B as embodied on the six plates PI -P6 so as to 

45 form winding path configurations overthe entire 
inner surface of the housing 1 1, will be clarified by 
referring to Figure 6 in conjunction with Figure 9, 
which shows the wire mesh W MA formed between 
terminals A and C and the wire mesh WMB formed 

50 between terminals B and D. 

In more detail, the wire mesh WM A connects to in- 
terconnection point A1 (Figures 6and 9), andthence 
via a conductive wire 70 to interconnection point A2 
on the interconnect stud K1. The conductive wire 70 

55 is bonded and connected in a similar mannertothat 
described hereinabove forthe wire 44 in Figure 8. For 
the sake of clarity, the conductive areas on the inter- 
connect studs such as K1 , to which the i nter- 
connections are made, are not specifically shown in 

60 Figure 6. The path proceeds from the interconnect 
stud K1 via the interconnect block N 1 (schematically 
shown in Figure 6asa pairof dark spots on the inter- 
connect studs K1 and K2 respectively), the inter- 
connect stud K2, the interconnection point A3, a con- 

65 ductive bonded wire 72 and an interconnection point 



A4 which is connected to the conductive path seg- 
ment P3A (notshown in Figure 6) on the plate P3. The 
support stud S1 is shown schematically as a shaded 
area on the plate PI. In Figure 9,thezigzag linecon- 

70 figurations such as the zigzag line between inter- 
connection points A5 and A6, represent conductive 
bonded wires similarto the conductive bonded wires 
70 and 72. By following through the sequenceshown 
forWMAin Figure 9, itwill be seen that the wire mesh 

75 WMA includes winding conductive path segments 
P3A, P1 A, P2A, P6A and PSA on the plates P3, P1 , P2, 
P6 and P5 in sequence, a conductive interconnect 
path PIALbetweentheinterconnection points A24 
and A25(see Figure 4) on the plate P1 and a winding 

80 conductive path segment P4A on the plate P4. The 
physical location of the interconnect studs K1 -K1 6 
and the interconnect blocks N1-N8 is clearfrom 
Figure 6, which also shows the locations of thesup- 
po rt stu ds S 1 -S8 f o r the i nterco n n ect bl ocks N 1 - N8. 

85 The interconnect studs K1-K1 6 are all of identical 
construction to the intercon nect studs K9and K1 Ode- 
scribed hereinabove with reference to Figure 8. 

The configuration of the wire mesh WMB is ident- 
ical to that just described forthe wire mesh WMA. 

90 Thus, the path from terminal B connects to inter- 
connection point B1 (Figures 6 and 9), and thence via 
a conductive wire 74 bonded to interconnection 
point B2 on an interconnect stud L1 . The path pro- 
ceeds from the interconnect stud L1 via an inter- 

95 connect block Q1 (schematicallyshownasapairof 
darkspotsonthe interconnect studs L1 and L2 re- 
spectively), the interconnect stud L2, the inter- 
connection point B3, a conductive wire 76 and an in- 
terconnection point B4 which is connected to the 
100 conductive path segment P3B (notshown in Figure 
6). The support stud T1 is shown schematically as a 
shaded area on the plate P1. By following throughthe 
sequenceshownforWMB in Figure 9, itwill be seen 
that the wire mesh WMB includes winding conduct- 
1 05 ive path segments P3B, P1 B, P2B, P6B and P5B on the 
plates P3, P1, P2, P6 and P5 in sequence, a conductive 
interconnect path P1 BL between the interconnection 
points B24 and B25onthe plate P1 (see Figure 4) and 
a winding conductive path segment P4B on the plate 
110 P4. The physical location of the intercon nect studs 
L1-L1 6 and the interconnect blocks Q1-Q8 is clear 
from Figure 6, which also shows the location of the 
support studs T1-T8 for the interconnect blocks Q1- 
Q8. 

115 Referring now particularlyto Figure 7, an end view 
of the interior of the assembled security device 1 0 is 
shown. Mounted on the base plate P6 are ceramic 
studs 80 which support a ceramic plate 82 on which is 
mounted electronic circuitry shown generally by re- 

120 ference 84. The location of the ceramic plate 82 is 
shown by the dashed rectangle 83 in Figure 6. The 
electronic circuitry 84, Figu re 7, is connected via con- 
ventional flexible printed circuit connections 86 to 
the conductive paths 1 2 and hence to the term inal 

125 areas 14. Also shown in Figure 7 are interconnect 
blocks Q4andQ7, interconnect studs L7, L8, L13and 
L1 4 mounted on the plates P2, P6, P1 and P4 re- 
spectively, and support studs T4 and T7 mounted on 
the plates P1 and P6 respectively. Itwill beapprecia- 

130 ted thattheterminals A, C, B, D (Figure9) are inclu- 
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ded in the electronic circuitry 84, although not specif- 
ically shown in Figure7. 

The manner in which the security device 10 is man- 
ufactured will now be briefly described. The plates 
5 P1-P6 are prepared in the following manner, utilizing 
known techniques of thin film technology. Firstly, a 
conductive thin film is deposited on a major surface 
of each of the ceramic plates P1 -P6. In the preferred 
embodiment, a thin layer of nickel is initially deposi- 

10 ted, followed by an overlying thin layer of gold. The 
deposition of such thin layers is standard in the art 
and can be implemented for example by dropping 
molten metal on to a substrate rotating at a high 
speed. However, other standard thin film deposition 

15 techniques could be utilized. The thickness of the thin 
conductive film should lie in the range of about 0.5 
micrometre to about 3.0 micrometres and is prefer- 
ably about 1 .0 micrometre. 

Next, the deposited thin conductive films are 

20 etched by conventional wet or dry etching tech- 
niques to form the desired conductive patterns, in- 
cluding the meandering conductive path segments 
P1A-P6A,P1B-P6B. Preferably, the width of the con- 
ductive path segments is about 25 micrometres and 

25 the spacing between adjacent conductive path seg- 
ments of the wire meshes WMA and WMB is also 
about 25 micrometres, although conductive path 
width and spacing as small as about 10 micrometres 
would be possible. The plates are now trimmed to 

30 the correct size. The ceramic interconnect studs K1- 
K1 6 and L1 -L1 6, the ceram ic support studs S1 -S8, T1 - 
T8 and the intercon nect blocks N 1 -N8, A1 -A8 are pro- 
duced. Conductive areas such as 34, 38 {Figure 8) on 
the interconnect studs K1-K8, L1-L8 and conductive 

35 coatings on a pairof adjacent sides on each of the 
interconnect blocks N1 -N8, Q1 -Q8 are then formed 
by standard thick film deposition techniques. The 
ceramic interconnect studs K1-K16, L1-L16andthe 
supportstudsS1-S8,T1-T8 are then bonded to the 

40 plates P1 -P6 at the desired locations by using non- 
conductive epoxy. Next, the intercon nect studs K1- 
K1 6, L1 -L1 6 a re con nected to the relevant i nter- 
connection points on the plates P1 -P6 by bonding 
into place conductive wires, such as the wires 44, 46 

45 shown in Figure 8. The ceramic plate 82 (Figure 7) 
having the electronic circuitry 84 mounted thereon is 
then mounted on the base plate P6 by means of the 
ceramicsupport studs 80. The side plates P2-P5 are 
then attached to the top plate P1 , using non- 
50 condu ct i ve e p oxy, with th e i nte rco n n ect b I ocks N 1 - 
N8, Q1-Q8 being attached in their desired locations 
on the top and side plates P1 -P5. The assembly con- 
sisting of the plates P1 -P5 is then bonded to the base 
plate P6 to form the complete device 1 0. 

55 It will be appreciated that since the conductive path 
segments of the wire meshes WMA and WMB are 
coplanar on each of the respective plates P1-P6,they 
can be readily simultaneouslyformed by the simple 
thin film deposition and etching steps referred to 

60 above. 

Referring now to Figure 10, the electronic circuitry 
84 of Figure 7 will now be discussed in moredetail. 
The electronic circu itry 84 incl udes data processing 
circuitry 100 and tamper detection circuitry 102. 
65 The data processing circuitry 100 can be utilized to 



perform any desired data processing operation in 
such applications as, for example, electronic pay- 
ment systems, electronicfund transfers, data encryp- 
tion/decryption, PIN (personal identification 

70 number) verification, data transmission/reception, 
access control and home banking. The data pro- 
cessing circuitry 1 00 includes a processor 102 for 
selectively controlling the operation of the electronic 
circuitry 84 in response to input data and in- 

75 structions, a timing and control circuit 104 for con- 
trollingthe operation of the processor 102, a pro- 
grammable read only memory (PROM) 106 for stor- 
ing the software program to be executed by the pro- 
cessor 102, a random access memory (RAM) 1 08 for 

80 providing a temporary memory storage, a volatile 
memory 1 1 0 for permanently storing the most sen- 
sitive or secure data such as a key storage key (KSK) 
(to be explained), a random number generator 112 
and an input/output (I/O) unit 114. 

85 A data, control and address bus 116, bidirectional 
I/O bus 1 1 8 and I/O lines 1 20 and 1 22 are coupled to 
the processor 102, timing and control circuit 104, 
PROM 106, RAM 1 08 and I/O unit 1 14 to enable the 
data processing circuitry 100 to perform its data pro- 

90 cessing operations. Data may be passed over bi- 
directional I/O bus 1 1 8 to or from the processor 1 02 
and over I/O lines 120 and 1 22 to orfrom the I/O unit 
1 1 4. The remote ends of the I/O bus 1 1 8 and I/O lines 
1 20 and 1 22 may be selectively cou pled to, for ex- 

95 ample, another data processor (not shown), a main 
computer (not shown) and a peripheral (such as a 
keyboard) (notshown)viatheterminals14(Figure1) 
in order to enable the data processing circuitry 100 to 
perform its preselected operations. 
100 Power to operate the electronic circuitry 84 is pre- 
ferably supplied from external power sources (not 
shown), such as power supplies and batteries, con- 
nected to preselected ones ofthe terminal areas 14 
(Figure 1). 

105 An initialization subroutine, contained in the soft- 
ware program stored in the PROM 1 06, is executed in 
a special mode of operation controlled by an auth- 
orized person. Preferably, this initialization subrout- 
ine can only be executed once after the security de- 

1 1 0 vice 1 0 (Figure 1 ) has been completely assembled. 
For purposes of additional security it is preferable 
that the volatile memory 110 be, for example, a re- 
settable memory such as a 64-bit shift register 
memory. 

115 During the execution of an INITIALIZE sub-routine 
the processor 102 applies an INITIALIZE signal to the 
random number generator 1 12to enable the gener- 
ator 1 1 2 tp generate a random number which is sto- 
red in the memory 1 1 0 as an exemplary sequence of 

1 20 64 random bits. This sequence of 64 random bits is 
the KSK (key storage key), which is the most sensitive 
or secure data contained in the data processing circu- 
itry 100. The KSK is utilized to encrypt keys which are 
to be entered into the security device 10 for storage in 

125 the RAM 108. Such keys are then used in data encryp- 
tion operations. The precise manner in which the 
KSK is utilized is not of significance to the present 
invention and will, therefore, not be further descri- 
bed herein. It should, however, be noted that the re- 

1 30 settable memory 1 1 0 stores the KSK, that the con- 
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tents of the memory 1 1 0 cannot be altered (if the sec- 
urity device 10 was programmed to runtheintiializa- 
tion program only once), thatthe KSK is neverout- 
putted to the outside world from the secu rity device 
5 1 0, and that for pu rposes of secu rity externa I access 
to the KSK contents of the memory 1 10 by various 
means must be prevented. 

Tamper detection circuitry 102 is included in the 
electronic circuitry 84 to specifically actively destroy 

1 0 the KSK in the resettable memory 1 10 if there is any 
attempt to penetrate the housing 1 1 of the security 
device 1 0 to gain access to the KSK stored in the 
memory 79. It should be realized that if the KSK is 
destroyed, any encrypted data or keys stored in RAM 

15 108 become meaningless or useless. Two principal 
ways that someone couid employ to attempt to gain 
access to the KSK stored in the resettable table 
memory 1 1 0 f as well as the reaction of the tamper 
detection circuitry 102 to such attempts, are dis- 

20 cussed below. 

Firstly, an attemptto penetrate the ceramic hous- 
ing 1 1 of the security device 1 0 may be made by dril- 
ling into or cracking the housing 11. To protect 
againstthis possibility, wire mesh A (WMA) of Figure 

25 9 is connected between a supply voltage V c and a 
sense circuit 1 24, while wire mesh B (WMB) of Figure 

9 is connected between a reference potential such as 
ground and a sense circuit 1 26. it will be recalled that 
WMA and WMB are different conductive paths 

30 formed on the interior surfaces of the plates P1 -P6 
forming the housing 11. An attemptto drill into or 
crack the housing 1 1 that damages either or both of 
WMA and WMB will be readily sensed, if WMA is 
broken or shorted to either WMB or ground by such 

35 an attempt, sense circuit 124 will generate a low vol- 
tage signal at point 128. Similarly, if WMB is broken 
or shorted to either WMA or V c by such an attempt, 
the sense circuit will generate a low voltage signal at 
point 128. In response to a low voltage signal at point 

40 1 28, a low voltage detector 1 30 generates a RESET 
signal on a line 131 to reset the memory 1 10 thereby 
actively clearing or destroying the KSK in the re- 
settable memory 110. 
Because of the narrow width and spacing of the 

45 conductive path segments on the plates P1-P6,the 
possibility is precluded of forming a very small dia- 
meter hole without breaking the continuity of at least 
one of the wire meshes WMA and WMB. The form- 
ation of such a small diameter hole could provide the 

50 possibil ity of a security breach, for example by per- 
mitting a very thin wire to be inserted into the device 

1 0 to make electrical contact with the electronic circu- 
itry 84. 

It is known that it is possible to retain data in static 
55 CMOS cells of a memory in an unpowered state (no 
supply voltage or battery voltage present), if those 
cells are initially frozen below -90 degrees cent- 
igrade before power is removed from the memory 
1 1 0. If this were done, it could be possible to subse- 
60 quently forcibly break into the security device 1 0 and 
read out the "frozen" contents of the memory 110. 

A low tern peratu re sensor 1 32 is therefore prov- 
ided in the tamper detection circuitry 1 02 to protect 
the security device 10 (Figure 1) against the above- 
6b descri bed ta m peri ng at extremely low tern peratu res. 



The sensor 1 32 is a Iso connected to point 1 28. Sensor 
1 32 is so implemented that when the temperature 
within the housing 1 1 (Figure 1 ) falls to, for example, 
-25 degrees centigrade, the sensor 132 generates 

70 and applies a low voltage signal to point 1 28. This 
low voltage signal applied from sensor 132 to point 
1 28 will also cause the I ow voltage detector 1 30 to 
generate a RESETsignal on the line 131 to reset the 
memory 1 1 0 to actively clear or destroy the KSK in 

75 the memory 110. 

Referring now to Figure 11, the tamper detection 
circuitry 102 will be described in more detail. 

The tamper detection circuitry 1 02 essentially in- 
cludes four parts. Afirst part includes wire mesh 

80 WMAand sense circuit 1 24. A second part includes 
wire mesh WMB and sense circuit 126. A third part 
includes the low temperature sensor 132. All of the 
first, second and third parts a re connected to a 
common output at point 1 28 which, in turn, is con- 
85 nected to the fourth partwhich includesthe lowvol- 
tage detector 130. Consequently, if any of the first, 
second orthird parts detects any attemptto gainac- 
cesstothe KSK in memory 110 (Figure 10) a low 
output is developed at point 1 28. As mentioned be- 
90 fore, such a low output at point 1 28 will cause the low 
voltage detector 130 to actively reset the memory 110 
to destroy the KSK stored therein. 

In the first part, pin C of WMA is coupled to sense 
circuit 124. A high or positive supply voltage V c is 
95 applied to pin A of WMA and to each of cascaded in- 
verters 134 and 136 in sense circuit 124. For purposes 
of this discussion assume that Vc = +4.5 volts. Aone 
megohm resistor 138 is connected between pin C of 
WMA and a low reference potential such as ground. 

1 00 Pin C is also connected to the input of inverter 134. 
The output of inverter 136 is applied through a 120 
kilohm resistor 1 40 to poi nt 1 28. 

When WMA is undamaged (not broken orshorted 
to either ground or WMB), the inputto inverter 134 is 

1 05 high, the output of inverter 1 34 is low and the output 
of inverter 136 is high. 

In the second part, pin D of WMB is coupled to 
sense circuit 126 and pin B of WMB is connected to 
the low reference potential or ground. Aone 

110 megohm resistor 142 is connected between pin D of 
WM B and V c . The supply voltage V c is also applied to 
cascaded inverters 144, 146, and 148. Pin D is also 
connected to the input of inverter 144 which, in turn, 
has its output con nected to the input of inverter 146. 

115 The output of inverter 1 46 is then connected to the 
input of inverter 1 48. The output of inverter 1 48 is 
applied through a 1 20 kilohm resistor 150 to point 
1 28. A 30 kilohm resistor 1 52 is connected between 
point 1 28 and ground to develop a common output 

120 forthesense circuits 124 and 126, aswell as to the 
low tern peratu re sensor 1 32 (to be explained). 

When WMB is undamaged (not broken orshorted 
to either V c or WMA), the inputto inverter 144 is low, 
the output of inverter 1 46 is low and the output of 

125 inverter 148 is high. 

Part 3 includes the lowtemperature sensor 1 32 
( Figure 1 0). The low tern perature sensor 1 32 inclu- 
des: a negative temperature coefficient (NTC) bridge 
circuit 1 54 which includes serially-connected re- 

130 sistors 1 56 and 1 58 coupled between V c and ground, 
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and serially-connected resistors 160 and 162 re- 
spectively coupled between V c and ground; an oper- 
ational amplifier 1 64 having its non-inverting input 
(+} connected to the junction of resistors 160 and 162 
5 and itsinverting input (-) connected to the junction 
of resistors 1 60 and 1 62; an inverter 1 66 for inverting 
the output of the operational amplifier 1 64; and a 
diode 1 68 coupled between the output of inverter 1 66 
and the point 128. 

1 0 The resistors 1 60 and 1 62 may be 800 kilohm re- 
sistors, while the resistors 1 58 and 1 60 may be 68 
kilohm resistors having negative temperature coeffi- 
cients (NTC). With this implementation the bridge cir- 
cuit 154 would be unbalanced unitl the temperature 

15 inside the housing 11 reaches approximately —25 de- 
grees C. It can be readily seen that when the bridge 
circuit 154 is unbalanced, the operational amplifier 
164 develops a low output which is inverted by inver- 
ter 166 to backbiasthe diode 168. Therefore, when 

20 the temperature inside the housing 11 (Figurel)is 
above -25 degrees centrigrade,the lowtemperature 
sensor 132 is effectively disconnected by the back- 
biased diode 168 from the point 128. 
Part4 includes a low voltage detector 130 connec- 

25 ted to point 128for developing a RESET signal on the 
line 131 when the potential across resistor 1 52 is 
below a preselected threshold voltage of, for ex- 
ample, + 1.1 5 volts when V c = +4.5 volts, a capacitor 
170 connected between point 1 28 and ground for re- 

30 taining the input potential (voltage developed across 
resistor 152) to the detector 130 for a sufficient time 
to enable the detector 1 30 to generate a RESET signal 
when the potential across resistor 1 52 falls below 
+ 1.15 volts. The low voltage detector 1 30 may be a 

35 voltage comparatorwhich develops a lowoutput 
when the voltage across resistor 1 52 falls belowan 
internal reference potential of + 1.15 volts. 
Various conditions will now be discussed 

(1 ) When no attempt has been made to freeze and/ 
40 or penetrate the housing 11 to gain access to the KSK 

in the resettable memory 110 (Figure 1 0) the tem- 
perature in the housing 1 1 (Figure 1 ) will be high en- 
ough nottotriggerthe lowtemperature sensor 132 
and both WMA and WMB will be undamaged. As a 

45 resu It, the outputs of I nverters 1 36 a nd 1 48 wi 1 1 both 
be high. Therefore, the voltage developed across re- 
sistor 1 52 (approximately +1.5 volts) will be above 
the 1.15voltthresholdofthe low voltage detector 
130. Consequently, the low voltage detector 130will 

50 not develop the RESET signal. 

(2) When WMA is broken or shorted either to 
ground or WMB, pin C goes to a low potential, caus- 
ing the inputto inverter 134 to go low. This low input 
is inverted to a high signal by inverter 134. The high 

55 signal (+4.5 volts) from inverter 134 is inverted by 
inverter 136 to a lowsignal(0 volts). Assume that 
WMB is not broken at this time and therefore that in- 
verter 148 develops a high output (+4.5 volts). As a 
result, a voltage divider including resistors 140, 1 50 

60 and 1 52 will cause point 1 28 to fall to approximately 
+0.9 volts. Since +0.9volts is below the +1.15volt 
threshold of the low voltage detector 1 30, the low 
voltage detector 130 will develop the RESET signal to 
actively reset meory 1 10 (Figure 10), 

65 (3) When WM B is broken or shorted either to V c or 



WMA, pin D goes high (+4.5 V). This high signal is 
inverted by inverter 144. The low signal (Ovolts)from 
inverter 144 is inverted by inverter 146. The high 
signal from inverter 146 is inverted by inverter 148. 

70 Assume that WMA is not broken atthis time and 
therefore thatinverter 136 develops a high output 
(+4.5 volts). As a result, the voltage divider com- 
prised of resistors 1 40, 1 50 and 152 will cause point 
1 28 to fall to approximately +0.9 volts. This will then 

75 cause the low voltage detector 130 to develop the 
RESETsignal to reset memory 1 1 0 (Figure 10). 

If both WMA and WMB are broken, the inverters 
136 and 1 48 will both go low, causing the charge ac- 
ross capacitor 1 70 to fall toward 0 volts. However, as 

80 soon as the voltage across capacitor 170 falls below 
+1 .1 5 volts, the low voltage detector 1 30 wi 1 1 gene- 
rate the RESETsignal on the line 131 . 

(4) If V c falls below +3.5 volts, the voltage across 
ca pa cito r 1 70 wi 1 1 f a 1 1 bel o w + 1 . 1 5 vo Its. Th is ag ai n 

85 will cause the low voltage detector 1 30 to generate 
the RESETsignal on the line 131. 

(5) Whenthetemperature in the housing falls 
below -25 degrees centigrade, the bridge circuit 1 54 
in the lowtemperature sensor 132 becomes either 

90 balanced or unbalanced in the opposite direction. In 
either event, the operational amplifier 164 develops a 
high output which is inverted by inverter 1 66. The 
lowoutput (0 volts) from inverter 166 forward biases 
diode 168 causing point 128tofall toward 0 volts. 
95 This will cause the charge across capacitor 1 70 to fall 
toward 0 volts. However, as soon as the voltage ac- 
ross ca pacitor 1 70 falls below + 1 .1 5 volts, the low 
voltage detector 130 generates the RESETsignal on 
the line 131 to clearthe memory 110. 

100 The invention thus provides a security device 10 
for the secure storage of sensitive data. It provides 
protection forthe device 1 0 against chemical attack, 
physical attack, and tampering at extremely lowtem- 
perature. The ceramic housing cannot be penetrated 

105 by chemicals, since ceramic material will notdis- 
solve. Physical attack by cutting or drilling will result 
in the ceramic housing 1 1 cracking or breaking, thus 
breaking or damaging at least one of the two con- 
ductive paths WMA and WMB. Penetration of the 

110 housing 11 by forming a very small diameter hole 
will result in the interruption of at least one of the 
wire meshes WMA and WMB. Furthermore, attempts 
to utilize a conductive flu id to bypass interruptions of 
the wire meshes will result in a short circuit between 

1 1 5 the wire meshes WMA and WMB. The tamper detec- 
tion circuitry 1 02 then actively resets the resettable 
memory 1 1 0 to destroy the sensitive data stored 
therein. Similarly, any attempt to tamperwiththe 
security device 1 0 at an extremely lowtemperature 

1 20 will also cause the tamper detection circuitry 1 02 to 
actively reset the memory 110. 

Modifications of the invention are possible. For ex- 
ample, if in a particular application it were envisaged 
that the use of a conductive fluid to bypass inter- 

1 25 ruptions in the conductive path were not a practic- 
able possibility, then the two wire meshes WMA and 
WMB could be replaced by a single wire mesh for- 
ming a winding configuration overthe entire interior 
surface of the housing 11, by interconnecting wind- 

130 ing conductive path segments on the parts P1-P6 in 
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the manner described hereinabove. 

Itwill be appreciated that by forming the wire 
meshes WMA and WMB using thinfilmtechnology, 
thethinfilm conductive path segments formingthe 
5 wire meshes WMA and WMB can have a very narrow 
width and spacing, thereby enhancing the security of 
the security device. However, if a somewhat lower 
degree of security were deemed to be acceptable in a 
particular application, a modification would be pos- 

10 sible wherein the conductive path segments con- 
stituting the wire meshes WMA and WMB could be 
formed by thickfilm technology, discussed here- 
inabove, instead of thinfilm technology. Usingthick 
film technology, a preferred width and spacing for 

15 the conductive paths and spacing is about 300 micro- 
metres, with a film thickness of about 1 0 micro- 
metres. 

CLAIMS 

20 

1 . A security device for protecting stored sensit- 
ive data, including a closed housing containing 
memory mea ns adapted to store sensitive data, and 
conductive path means provided in a winding con- 

25 figuration on the entire inner surface of said housing, 
wherein said housing contains tamper detection cir- 
cuitry which is coupled to said conductive path 
means and to said memory means, and which inclu- 
des reset signal generating means adapted to gene- 

30 rate a reset signal to erase the contents of said 

memory means in the event of an interruption of said 
conductive path means brought about by an attempt 
to penetrate said housing. 

2. Asecuritydeviceaccordingtoclaim 1, wherein 
35 said conductive path means isformed by a conduct- 
ive thin film. 

3. Asecurity device according to claim 1 or2, 
wherein said conductive path means includes first 
and second substantially parallel conductive paths 

40 provided on said inner surface of said housing. 

4. A security device according to claim 3, wherein 
said housing includes a plurality of individual parts 
connected together, each part including a ceramic 
substrate having first and second conductive path 

45 segments provided thereon, said device including in- 
terconnection means interconnecting the respective 
first and second conductive path segments on said 
plurality of individual parts to form said first and 
second conductive paths. 

50 5. A security device according to claim 4, wherein 
said conductive path segments are formed by a thin 
conductive film having a thickness in the rangeof 
from about 0.5 micrometres to about 3.0 micro- 
metres. 

55 6. Asecurity device according to claim 5, wherein 
the width of said conductive path segments is in the 
range of from about 1 0 micrometres to about 25 mic- 
rometres and the spacing between adjacent conduct- 
ive path segments is in the range of from about 10 

60 micrometrestoabout25 micrometres. 

7. Asecurity device according to claim 6, wherein 
interconnection means includes a plurality of indi- 
vidual interconnection devices, each including: first 
and second nonconductive members having re- 

65 spective first and second conductive areas provided 



thereon, said first and second nonconductive mem- 
bers being mounted on first and second ones of said 
parts; conductive means interconnecting said first 
and second conductive areas with respective con- 
70 ductive path segments on said first and second 
parts; and a conductive member interconnecting 
said first and second conductive areas. 

8. A security device according to claim 7, wherein 
said conductive member includes a multi-sided 

75 block of nonconductive material provided with con- 
ductive material on two adjacent sides thereof. 

9. Asecurity device according to claim 3, wherein 
said tamper detection circuitry includes first and 
second sensing means connected respectively to 

80 said first and second conductive paths and respon- 
sive to damage to the respective first and second 
conductive paths to provide respective first and 
second control signals, said reset signal generating 
means being connected to said first and second sen- 

85 sing means and being adapted in response to either 
of said first and second control signals to generate 
said reset signal. 

1 0. A security device according to claim 9, 
wherein said first conductive path has a first terminal 

90 thereof connected to power supply means and to 
said first sensing means and a second terminal 
thereof connected through a first resistor to a refer- 
ence potential and wherein said second conductive 
path has a first terminal thereof connected through a 

95 second resistortosaid power supply means and to 
said second sensing means, and a second terminal 
thereof connected to said reference potential. 

11. A security device according to claim 9 or 1 0, 
wherein said tamper detection circuitry includes 

100 temperature sensing means connected to said reset 
signal generating means and adapted, in response to 
a decrease in temperature within said housing below 
a predetermined temperature level to provide a third 
control signal to cause said reset signal generating 

105 means to generate said reset signal. 

12. A security device according to any one of the 
preceding claims, wherein said memory means in- 
cludes a resettable shift reg ister adapted to be reset 
by said reset signal. 

110 13. Asecurity device for protecting stored sensit- 
ive data, substantially as hereinbefore described 
with reference to the accompanying drawings. 
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